CLAIMS 



We claim: 

A system for a\^web based trust model governing delivery 
of services and programs from a workflow, enterprise and 
mail-enabled application server and platform, comprising: 

a connection protpcol connecting a user client to a 
server site; 

download utilitiesl responsive to said connection 
protocol for downloading said services and programs 
from said server silte to said user client; and 

trust assignment uselr interface dialogs responsive to 
said connection protocol for advising said user of 
risks taken when accepting executable download from 
said server site, 

2. The system of claim 1, kaid connection protocol 
selectively being HTTP dr HTTPS. 



3. 



The system of claim 1, further comprising: 
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a processor for establishing security context, said 
processor including 

a stage 1 processor for determining from said user 
if said server \site is to be trusted; and 



a stage 2 processor for establishing whether or 
not the identity \of said web site is confirmed and 
determining from said user if processing should 
continue to include installation of programs on 
said client. 



The system of claim 3, farther comprising: 
a client download page; 

a download control element In said download page; 

said processor being activated upon activation of said 
download control element within said download page 
initiating a download process first to establish a 
security context and then to download program 
executable files. 



The system of claim 2, further comprising: 
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2 said download utilities being responsive to an SSL 

3 connection to said server for activating said dialog to 

4 advise said user that said server site has been 

5 verified as being Vhat it represents itself to be and 

6 to query said user whether code is to be downloaded 

7 / from said server site to said client. 

a \ 

lf J 6. The system of claim 5} said code being custom code. 

1 7. The system of claim 5,1 said download utilities being 

2 responsive to a connection from said client to said 

3 server being other than SSL for activating said dialog 

4 to advise said user that said server site has not been 

5 verified as being what it represents itself to be and 

6 to query waid user whether code is to be downloaded 

7 from said server site to \said client. 

1 8. The system of claim 7, sai\d code being custom code. 

1 9. The system of claim 1, furtmer comprising: 

2 said download utilities beina responsive to user 

3 acceptance of download from said server site of 

4 executable code for downloading said executable code to 

5 said client; \ 
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a trace utility fory identifying originators of 
downloaded code. 

The system of claim 9,\ said trace utility selectively 
identifying originators of signed agents through 
electronic signature, of custom code traceable to code 
vendor through web site! relationship, or custom code 
directly created by said web site. 

The system of claim 1, further comprising: 

\ 



a first trust model for establishing level of traceable 
accountability for a subscription at download time over 
a secure connection protocol; 



a second trust model for establishing a reduced level 
of traceable accountability, with traceable 
accountability established onlyt for electronically 
signed agents used by said subscription over a 
connection protocol not verified\as secure; and 



said dialogs being responsive to said trust models. 
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12. A method for governing delivery of services and 
programs from a workflow, enterprise and mail-enabled 
application server and pvLatform according to a web based 
trust model, comprising ohe steps of: 



establishing a connection protocol between a client and 
a web site; 



responsive to said connection protocol, determining a 
trust level assignable said web site relative to 
risks taken when accepting executable download from 
said web site; 



advising a user at said client of said trust level 
assignable with respect to\said risks to said web site; 
and 

responsive to user acceptance of said risks, 
downloading said services and programs from a server 
site to said user client. 



13. The method of claim 12, further Comprising the steps 
of: 



displaying a download control element in a client 
L0T9 2000 0011 US1 142 \ 



# • 

download page; 

\ 

responsive to^user selection of said download control 
element or upon schedule, initiating a download process 
first to establish a security context and then to 
download program \executable files from said server. 

The method of claim 12, further comprising the step of: 

responsive to user acceptance of download from said 
server site of executable code, downloading said 
executable code to saia client. 

The method of claim 14, farther comprising the step of: 

identifying originators of downloaded code. 

The method of claim 15, further comprising the step of 

selectively identifying originators of signed agents 
through electronic signature, of custom code traceable 
to code vendor through web site relationship, or custom 
code directly created by said web sine. 



The method of claim 12, further comprising the seps of 
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establishing a first trust model specifying a level of 
traceable accountability for a subscription at download 
time over a secure connection protocol; 



establishing a second trust model for specifying a 
reduced level of ti^ceable accountability, with 
traceable accountability established only for 
electronically signed agents used by said subscription 
over a connection protocol not verified as secure; and 



said dialogs being responsive to said trust models. 

18. A program storage device \readable by a machine, 
tangibly embodying a program or instructions executable by a 
machine to perform method steps\ f or governing delivery of 
services and programs from a workflow, enterprise and mail- 
enabled application server and platform according to a web 
based trust model, said method steps comprising: 

establishing a connection protocol between a client and 
a web site; 



responsive to said connection protocol, determining a 
trust level assignable to said web\site relative to 
risks taken when accepting executable download from 
L0T9 2000 0011 US1 144 



said web site; 

advising a user at said client of said trust level 
assignable with respect to said risks to said web site; 
and 

responsive to us^r acceptance of said risks, 
downloading said ^services and programs from a server 
site to said user\^lient. 

19. A computer program product configured to be operable to 
govern delivery of services and programs from a workflow, 
enterprise and mail-enabled application server and platform 
according to a web based t^ust model, according to the steps 
of: 

establishing a connectio\i protocol between a client and 
a web site; 



responsive to said connection protocol, determining a 
trust level assignable to said web site relative to 
risks taken when accepting executable download from 
said web site; 



advising a user at said client or said trust level 
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assignable with respect to said risks to said web site; 
and 

responsive to useV acceptance of said risks, 
downloading said services and programs from a server 
site to said user client . 
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